Cyber Risk Consultant
M&G plcStirling, Scotland, United Kingdom • City of Edinburgh, Scotland, United Kingdom
Posted April 22, 2026
Full Time
About the Company
M&G is a savings and investments firm with a heritage dating back over 175 years, offering a wide range of solutions in asset management and insurance.
Job Description
M&G is seeking a Cyber Risk Consultant to provide second-line oversight of cyber security programs, projects, and control improvement initiatives, with expertise in risk management principles, architectural requirements, security engineering, threat intelligence, vulnerability management, and incident response.
Requirements
- Provide an independent assessment of the design and operating effectiveness of selected first-line controls
- Deliver a second-line view of cyber security events and associated remedial actions
- Manage the planning, engagement, and delivery of Red Team Cyber testing activities
- Advise on the design and development of risk appetite statements and metrics for technology and digital risks in relation to cyber
- Provide second-line oversight of the end-to-end processes for cyber threat intelligence
- Support First Line delivery of Risk & Control Self Assessments and timely closure of assurance actions
- Build effective relationships with stakeholders in Technology, Security, and business functions
- Line manage a Risk professional in the Technology Risk team
Benefits
- 18% pension scheme with 13% employer contributions and 5% employee contributions
- Share Save and Share Incentive Plan
- Financial wellbeing and support services
- 38 days annual leave including bank holidays
- Time Off When You Need It policy
- Inspiring Families policy with comprehensive support and paid parental leave
- Health & Protection cover including Private Healthcare, Critical Illness cover, and Life Assurance
